CVE-2018-6677Path Traversal in WEB Gateway

CWE-22Path Traversal3 documents3 sources
Severity
9.1CRITICALNVD
EPSS
0.5%
top 32.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Mcafee WEB Gateway
Timeline
PublishedJul 23
Latest updateMay 13

Description

Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to gain elevated privileges via unspecified vectors.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:HExploitability: 2.3 | Impact: 6.0

Affected Packages2 packages

CVEListV5mcafee/mcafee_web_gateway7.8.17.8.1*

🔴Vulnerability Details

2
GHSA
GHSA-77x6-r257-2x55: Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 72022-05-13
CVEList
McAfee Web Gateway (MWG) - Directory Traversal vulnerability2018-07-23
CVE-2018-6677 — Path Traversal in Mcafee WEB Gateway | cvebase